Overview

overview

7

Static

static

3

You_Are_An_Idiot.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    You_Are_An_Idiot.exe

  • Size

    597KB

  • Sample

    240914-tmbhnataqh

  • MD5

    0cfeb0915edbdf1a298794c1669ec632

  • SHA1

    fce0832eebe9465f2e6f0a2ef903013db21392c4

  • SHA256

    e90065ab6f60a1a49ea185538d6e32a6269574c96851fcb8a001a7c8a23f3084

  • SHA512

    17230fd8f1946c1e759e941f192142cf8772e8937bd9a0f13a9d7e03f8347348a9b3fc541d9ba1040c1a6d6100e34e076083600404cc8cf1b17c6385f1093f60

  • SSDEEP

    12288:yyveQB/fTHIGaPkKEYzURNAwbAgOT+t1JELXJfV2CEwBGSmv:yuDXTIGaPhEYzUzA0bJmVVuo7m

Score
7/10
discovery

Malware Config

Targets

    • Target

      You_Are_An_Idiot.exe

    • Size

      597KB

    • MD5

      0cfeb0915edbdf1a298794c1669ec632

    • SHA1

      fce0832eebe9465f2e6f0a2ef903013db21392c4

    • SHA256

      e90065ab6f60a1a49ea185538d6e32a6269574c96851fcb8a001a7c8a23f3084

    • SHA512

      17230fd8f1946c1e759e941f192142cf8772e8937bd9a0f13a9d7e03f8347348a9b3fc541d9ba1040c1a6d6100e34e076083600404cc8cf1b17c6385f1093f60

    • SSDEEP

      12288:yyveQB/fTHIGaPkKEYzURNAwbAgOT+t1JELXJfV2CEwBGSmv:yuDXTIGaPhEYzUzA0bJmVVuo7m

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks